CVE-2019-0768

CVE Database · CVE-2019-0768

CVE-2019-0768

· N/AModified

CVSS v3.1

N/A

EPSS

48.50%

Published

Apr 8, 2019

Modified

Nov 21, 2024

Public PoC / Exploit (2)

All weaponized →

Exploit-DBMicrosoft Internet Explorer 11 - VBScript Execution Policy Bypass in MSHTML TrickestTrickest PoC index

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

A security feature bypass vulnerability exists when Internet Explorer VBScript execution policy does not properly restrict VBScript under specific conditions, and to allow requests that should otherwise be ignored, aka 'Internet Explorer Security Feature Bypass Vulnerability'. This CVE ID is unique from CVE-2019-0761.

Weaknesses (CWE)

CWE-20

Affected Products (5)

microsoft · internet_explorervulnerable

microsoft · windows_10

microsoft · windows_server_2019

References (2)

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0768

PatchVendor Advisory

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0768

PatchVendor Advisory

KEV Catalog EPSS Scores Vendors All CVEs